Copyright

All
publications of HRDQ and its associated authors are copyrighted. Their
reproduction, in whole or in part, by any process, is a violation of
copyright law unless prior written authorization has been obtained from
the publisher. This policy applies, but is not limited to, any learning
instrument or section thereof, as well as answer sheets, scoring
devices, profiles, report forms, tables, charts, norms or other quoted
material found in instruments, manuals, brochures, or books.

The
information, data, reports and descriptions found on this or any other
HRDQ web site is provided “as is.” HRDQ disclaims
any warranties, expressed or implied, regarding its accuracy or
reliability, and assumes no responsibility for errors or omissions.
Where legally permissible, HRDQ accepts no liability for any injuries
or damages caused by acting upon or using the content contained in its
online services or publications.

EU Safe Harbor Policy

Important Note!

On October 6, 2015, the European Court of Justice (“CJEU”) issued a judgment declaring as “invalid” the European Commission’s Decision 2000/520/EC of 26 July 2000 “on the adequacy of the protection provided by the safe harbour privacy principles and related frequently asked questions issued by the US Department of Commerce.”

We understand that the United States and the European Commission are currently working toward a negotiated solution to replace the Safe Harbor agreement. In the present rapidly changing environment, the Department of Commerce has stated that it will continue to administer the Safe Harbor program, including processing submissions for self-certification to the Safe Harbor Framework. Accordingly, BBB EU Safe Harbor will continue to offer dispute resolution services for privacy complaints from EU consumers, for new or renewing program participants who wish to acquire or maintain current self-certifications stating their ongoing adherence to the Safe Harbor privacy principles with respect to the personal data of EU citizens.

On October 16, the Article 29 Data Protection Working Party (“Article 29 WP”), an EU advisory body on data protection including representatives of the national data protection authorities (“DPAs”), issued a press release, stating its view that data transfers from the European Union to the Unites States under the Safe Harbor Decision after the CJEU judgment are unlawful; and noting that DPAs will take action, potentially including coordinated enforcement actions, if by the end of January 2016 no appropriate solution with the U.S. authorities is found. It also noted that in the meantime, individual DPAs may investigate in particular cases and exercise their powers to protect individuals, for instance, in case of a complaint.

If you have questions regarding how the CJEU judgement will affect your business, please contact the Department of Commerce, the appropriate European national data protection authority, or legal counsel. BBB EU Safe Harbor cannot provide legal guidance with respect to any business’s current or future data transfers from the EU to the United States.

US-EU and US-Swiss Safe Harbor Policy

HRDQ complies with the
U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set
forth by the U.S. Department of Commerce regarding the collection, use, and
retention of personal information from European Union member countries and
Switzerland. HRDQ has certified that it adheres to the Safe Harbor
Privacy Principles of notice, choice, onward transfer, security, data
integrity, access, and enforcement. To learn more about the Safe Harbor
program, and to view the Organization, Design and Development (HRDQ’s)
certification, please visit http://www.export.gov/safeharbor/

HRDQ is not responsible for the privacy or security of web sites to which the HRDQ assessment center may link or for those of any downstream linkages

Privacy

Online Data Collection

HRDQ will, at times, collect certain personal identifiable information (PII) as
necessary, with the purpose of providing assessment related services. The PII data that we collect is
limited to name and corporate email address. As part of our Privacy Policy, and in an effort to adhere
to US and EU data privacy laws, HRDQ shall comply with the following guidelines:

HRDQ will use PII data ONLY for the intended purposes.

HRDQ will notify you in the event of a breach or incident in which your PII data security is compromised.

You have the right to contact HRDQ to request to review, or remove your PII data or to request the limitation of use and disclosure of your PII data. (see contact info below)

At times and only as necessary to support our assessment related services, authorized vendors may have visibility to PII Data. Other than
authorized vendors, HRDQ will NOT provide access, give away or sell PII data to any third parties.

HRDQ does not, and will not share, give away or sell PII data to third parties and therefore HRDQ does not provide an opt-out option.
If our policy changes in the future, HRDQ will provide individuals with the ability to opt-out of sharing their data.

HRDQ may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to
meet national security or law enforcement requirements.

In cases of onward transfer to third parties of data of EU individuals received pursuant to the EU-US Privacy Shield, HRDQ is potentially liable.

HRDQ will take appropriate and reasonable steps to protect PII and survey data. (see below)

Cookies

HRDQ site makes use of a technology called session-only cookies. These cookies are deleted after the web survey session is over.

External Links

HRDQ is not responsible for the privacy policies of web sites to which HRDQ web site may link or for those of any downstream linkages.

EU Privacy Shield

HRDQ is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission. HRDQ complies with the EU-US
Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European
Union member countries. HRDQ has certified that it adheres to the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security,
Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability. If there is any conflict between the policies in this privacy policy
and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification
page, please visit https://www.privacyshield.gov/

In compliance with the EU-US Privacy Shield Principles, HRDQ commits to resolve complaints about your privacy and our collection or use of your
personal information. European Union individuals with inquiries or complaints regarding this privacy policy should first contact HRDQ at:

HRDQ has further committed to refer unresolved privacy complaints under the EU-US Privacy Shield Principles BBB EU PRIVACY SHIELD, a
non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus.
If you do not receive timely acknowledgment of your complaint, or if your
complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to
file a complaint. Please note that if your complaint is not resolved through these channels, under limited circumstances, a binding
arbitration option may be available before a Privacy Shield Panel.
The United States Federal Trade Commission (FTC) is the enforcement authority with jurisdiction over this compliance with the Privacy Shield.

Swiss Safe Harbor

HRDQ complies with the US-Swiss Safe Harbor Framework as set forth by the US Department of Commerce regarding the collection, use, and retention
of personal information from Switzerland. HRDQ has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer,
security, data integrity, access, and enforcement . If there is any conflict between the policies in this privacy policy and the Safe Harbor Privacy
Principles, the Safe Harbor Privacy Principles shall govern. To learn more about the US-Swiss Safe Harbor and to view our certification page, please
visit http://www.export.gov/safeharbor/
In compliance with Swiss-US Safve Harbor Principles, HRDQ commits to resolve complaints about your privacy and our collection or use of your personal
information. Swiss individuals with inquiries or complaint regarding this privacy policy should first contact HRDQ at:

HRDQ has further committed to refer unresolved privacy complaints under the US-Swiss Safe Harbor to an independent dispute resolution
mechanism operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if
your complaint is not satisfactorily addressed, please visit www.bbb.org/us/safe-harbor-complaints for
more information and to file a complaint.